wess.devdocs

Secrets

Secrets are private key/value pairs injected into your app as environment variables on each deploy. API keys, tokens, feature flags — anything you don't want in the repo. They're stored in the platform's database, never in your code or build.

Managing secrets

terminal
wess secrets set blog STRIPE_KEY sk_live_abc123
wess secrets list blog
wess secrets unset blog STRIPE_KEY

When they apply

Secrets are snapshotted into the machine at deploy time. Setting or removing one doesn't restart anything — it takes effect on your next deploy:

terminal
wess secrets set blog FLAG on
git commit --allow-empty -m "apply secrets" && git push wess main

Reserved names

DATABASE_URL and PORT are set by the platform. You can override DATABASE_URL with your own value if you're pointing at an external database — your value wins.

← Databases Logs →